Olivia
Online
AlgoSize
@AlgoSize
Algosize is a cybersecurity company that identifies and solves security challenges through an ethical hacker community. #ai #blockchain #software
Joined January 2022
348 Following
15 Followers
48 Posts
1inch market maker @trustedvolumes got hacked for over $4.5M and a few smaller MMs got hacked for $0.5M yesterday.
The root cause is that 1inch calls MM contract’s resolveOrders function to get funds to its settlement contract. Most bots only checked the msg.sender = settlement contract - and unfortunately there was an arbitrary call vulnerability in settlement contract. Thus the hacker could forge resolveOrders call and drain MM contracts.
The funny thing is the hacker incorrectly transferred half of the stolen funds to the 1inch settlement contract, making the funds available for everyone to grab, and he spent quite sometime to get funds back. We were trying to compete but the hacker got it first unfortunately.
🚨 Urgent Alert: Criminals posing as "BianLian Group" are sending extortion letters to corporate execs, threatening to leak sensitive info unless paid. Report incidents to CISA at [email protected]. Review our alert for more 👉 https://t.co/RfiPZqff48 #Cybersecurity
🇰🇵Lazarus infrastructure linked to the recent SafeWallet/Bybit breach.
🕵️Key Observations:
Shared JARM fingerprint
Identical HTTP headers
Common domain registration via Namecheap
Same certificate provider (Sectigo)
70.34.245[.]118
getstockprice[.]com
131.226.2[.]120
getstockprice[.]info
5.206.227[.]51
clubinfo[.]io
![MichalKoczwara's tweet photo. 🇰🇵Lazarus infrastructure linked to the recent SafeWallet/Bybit breach.
🕵️Key Observations:
Shared JARM fingerprint
Identical HTTP headers
Common domain registration via Namecheap
Same certificate provider (Sectigo)
70.34.245[.]118
getstockprice[.]com
131.226.2[.]120
getstockprice[.]info
5.206.227[.]51
clubinfo[.]io](https://pbs.twimg.com/media/GldOeFtWsAAKa_S.jpg)
Linux File System
⚠️ Alert: New Telegram Malware on Android! ⚠️
This sneaky malware masquerades as a regular video, targeting your data. If opening a video redirects you to a browser asking for an app update or "necessary" player installation, do NOT proceed!
Wireshark is one of the most important tools in cybersecurity!
Master it now!
You can now jailbreak your AMD CPU! 🔥We've just released a full microcode toolchain, with source code and tutorials. https://t.co/4NYerRuFo1
🚨 GreyNoise has detected active exploitation of Silk Typhoon-linked CVEs in the past 24 hours. 90 threat IPs actively targeting. Full analysis: https://t.co/3q2zn497wN #GreyNoise #Cybersecurity #SilkTyphoon
🐱💻 North Korean hackers, TraderTraitor, pulled off a $1.5 billion 💰 crypto heist targeting Safe{Wallet} and Bybit.
They bypassed MFA, hijacked AWS tokens, and used tools like Kali Linux for stealth access.
Social engineering also tricked developers into running a malicious Docker project to fuel the breach.
Learn more: https://t.co/NhexstIVnq
Bybit’s $1.5B hack is bullish - Lazarus has diamond hands.
Led by Park Jin Hyok, now wanted by the FBI.
They’ve just drained $1.46B in staked ETH & ERC-20 tokens from Bybit, making it the biggest crypto hack ever, twice the size of the second-largest breach.
How did they pull it off? Let’s break it down. 🧵👇
A coordinated effort led to the freezing of $42.89M in just one day. Thanks to the following teams for their swift action:
@tether: Flagged address and froze 181K USDT
@THORChain: Blocked the blacklist
@ChangeNOW_io: Froze 34 ETH
@FixedFloat: Froze 120K USDC + USDT
@avax: Froze 0.38755 BTC
@coinexcom: Blocked the blacklist and provided key insights
@bitgetglobal: Blocked the blacklist and froze 84 USDT
@circle: Assisted in connecting and provided crucial clues
Respect to their teams for their timely responses. They helped us monitor and block the blacklisted addresses.
#BlackBasta #Ransomware leaked chat logs (I've uploaded to github for visibility and less restrictions).
https://t.co/Pj0XPGenAR
Over $1.46 billion worth of cryptocurrency was stolen from Bybit's Ethereum cold wallet in the largest crypto heist to date, reportedly orchestrated by the Lazarus Group.
The attack masked the signing interface, tricking the wallet into transferring funds to an unknown address.
Learn more: https://t.co/zrkMNVr3x0
The recent @Bybit_Official hack was a tough incident.
Multisig hacks remain a serious threat. Forta Firewall’s upcoming Multisig Module is designed to detect and prevent these kinds of attacks before they happen.
Here’s a sneak peek 👀
ALERT: BYBIT HACKER SENDING FUNDS TO MULTIPLE NEW ADDRESSES
Web Scraping Cheat sheet
BUIDL Day @ ETHDenver x @DoraHacks
Buidlers. Explorers. Thinkers. Join us on March 1st ⚛️
Buidl Day comes to Denver to showcase rising projects from Cosmos and beyond! With @babylonlabs_io, @initia, @movementlabsxyz, @SonicLabs, @Aptos.
Register: https://t.co/murthYqiQd
Last Seen Users on Sotwe
𝑻𝒐𝒍𝒍𝒚 𝑨𝒅𝒖𝒍𝒕 
Seen from Turkey
This is Neria
制服に恋してる
Seen from Japan
خاضع للملكات
cpl (K-A)
Seen from Saudi Arabia
عثمان السوداني 🇸🇩
Seen from Italy
Aspiranti Scambisti
Seen from Italy
fossoria
Seen from Germany
DOGAL EV HALİ 🏡
Seen from Turkey
Resim paylaşmak isteyenler atabilirsiniz
Seen from Turkey
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers